OneTimeSecret v0.22.4 Release Notes

Version v0.22.4 introduces new configuration options for customizing security policies and access control.

Changes

Configurable Passphrase Validation: Environment variables are now available to configure passphrase requirements, including minimum length and complexity. This is useful for deployments with specific security policies.

Disable Homepage: A new AUTH_REQUIRED mode can be enabled to restrict homepage access to authenticated users. Site navigation remains available. This can be used with UI_ENABLED=false for API-only deployments.

Password Generation: The length and character sets (uppercase, lowercase, numbers, symbols) of generated passwords can now be configured. There is also an option to exclude ambiguous characters.

!INFOAdmin Interface: The Colonel settings view is now read-only.

Configuration Examples

# Disable Homepage
AUTH_REQUIRED=false
UI_ENABLED=true

# Password Policies
PASSPHRASE_MIN_LENGTH=8
PASSPHRASE_ENFORCE_COMPLEXITY=false
PASSWORD_GEN_LENGTH=12
PASSWORD_GEN_SYMBOLS=false

Installation

Docker: docker pull onetimesecret/onetimesecret:v0.22.6Source: GitHub Release

The release also includes updates to INSTALL.md and the README.md for Docker deployment.

This post was written with assistance from:

• Claude Code: collecting release facts, document structure, first draft.
• Gemini CLI: content editing ("Update the text to remove false enthusiasm, marketing speak, and overall keep it an engineer's doc")